Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'81 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'58 
b'ooooooo_q'52 
b'guido'50 
b'haxta4ok00'49 

the unofficial HackerOne disclosure timeline.

X
b'Brave Software' disclosed a bug submitted by b'kanytu' 
b'Cookie steal through content Uri'
22 Apr 2021 timeline
b'Twitter' disclosed a bug submitted by b'a13h1' 
b'PI leakage By Brute Forcing and Phone number deleting without using password'
22 Apr 2021 timeline
b'Basecamp' disclosed a bug submitted by b'hensis' 
b'Lack of quarantine macOS attribute(com.apple.quarantine) leads multiple issues including RCE'
22 Apr 2021 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'ryotak' 
b"RCE in 'Copy as Node Request' BApp via code injection"
22 Apr 2021 timeline
b'Panther Labs' disclosed a bug submitted by b'run_win' 
b'Broken Link Hijacking on Twitter link'
22 Apr 2021 timeline
b'Homebrew' disclosed a bug submitted by b'ryotak' 
b'Broken parsing of Git diff allows an attacker to inject arbitrary Ruby scripts to Casks on official taps'
21 Apr 2021 timeline
b'Clario' disclosed a bug submitted by b'beerboy_ankit' 
b'Social media link hijack of team member [Linkedin] at https://mackeeper.com/team/'
21 Apr 2021 timeline
b'Ruby' disclosed a bug submitted by b'chinarulezzz' 
b"'net/ftp': Uncontrolled Resource Consumption (Memory/CPU)"
21 Apr 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'hacker_as980' 
b'CSRF in https://'
20 Apr 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'lu3ky-13' 
b'HTTP Request Smuggling '
20 Apr 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'fiveguyslover' 
b'Administration Authentication Bypass on https://'
20 Apr 2021 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'gentlemenhacker' 
b" portal is open to enumeration once authenticated. Session ID's appear static. All PII available once a valid session ID is found."
20 Apr 2021 timeline
b'GitLab' disclosed a bug submitted by b'vakzz' 
b'RCE via unsafe inline Kramdown options when rendering certain Wiki pages'
20 Apr 2021 timeline
b'Nintendo' disclosed a bug submitted by b'mrnbayoh' 
b'[3DS][StreetPass] Buffer Overflow in Super Mario Maker level decompression'
20 Apr 2021 timeline
b'New Relic' disclosed a bug submitted by b'jon_bottarini' 
b'Stored XSS via malicious key value of Synthetics monitor tag when visiting an Insights dashboard with filtering enabled'
20 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'stregh' 
b'bypassing dashboard without account + Information disclosure trough websockets '
20 Apr 2021 timeline
b'Nextcloud' disclosed a bug submitted by b'syachineko' 
b'No set limit to try to login in "https://auth.nextcloud.com/auth/realms/master/protocol/openid-connect/auth" page.'
20 Apr 2021 timeline
b'Kryptor' disclosed a bug submitted by b'jaimaakali' 
b'Kryptor/SECURITY.md missing HACKERONE program update.'
19 Apr 2021 timeline
b'Mail.ru' disclosed a bug submitted by b'3xternull' 
b'Stored XSS on store.my.games'
17 Apr 2021 timeline
b'Node.js third-party modules' disclosed a bug submitted by b'd3lla' 
b'[wireguard-wrapper] Command Injection via insecure command concatenation'
16 Apr 2021 timeline
1 ... 197 198 199 200 201 ... 732
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM